Re: Firewall
- From: Robert Watson <rwatson@xxxxxxxxxxx>
- Date: Mon, 30 Apr 2007 13:17:46 +0100 (BST)
On Mon, 30 Apr 2007, Peter Jeremy wrote:
On 2007-Apr-30 10:58:18 +0100, Robert Watson <rwatson@xxxxxxxxxxx> wrote:
One of the big selling points of IPFW is integration with DUMMYNET, which offers bandwidth management facilities not present in the other systems.
I thought altq(4) could also do most of what dummynet(4) does but based on a closer look, it seems that it can't do the packet delay stuff, though it seems to have fairly similar bandwidth management facilities.
altq(4) as implemented on FreeBSD operates on outbound network interface queues. This limits its utility significantly:
(1) It does not affect inbound network traffic at all, so for non-routers, you
can't control the way inbound traffic appears to the stack, only replies.
(2) Most modern network hardware effectively places these queues in hardware,
especially if not running completely saturated.
Robert N M Watson
Computer Laboratory
University of Cambridge
_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"
- References:
- Firewall
- From: Jack Barnett
- Re: Firewall
- From: Peter Jeremy
- Re: Firewall
- From: Robert Watson
- Re: Firewall
- From: Peter Jeremy
- Firewall
- Prev by Date: Re: Firewall
- Next by Date: Re: Why can't I sendto() to 127.255.255.255
- Previous by thread: Re: Firewall
- Next by thread: Re: kern/105943: Network stack may modify read-only mbuf chain copies
- Index(es):
